General
-
Target
859e6cf84ff73e9a9921fb829c3a386e
-
Size
777KB
-
Sample
220504-xs71laede4
-
MD5
859e6cf84ff73e9a9921fb829c3a386e
-
SHA1
5bbc936fdb82ed3e57c1ae2f4a0cbfab459883b7
-
SHA256
cad1b58e38cfc1e0a0431fa9aae253a1626b4e4e3a6cbc6a8f119cd4959f6410
-
SHA512
bae39f648487e4ac364152cf18061d28d834f11ea27027075ebc41508d0850fd5416b0fcfdfedbc66afc4c734bb969625046cb8f18523e437f49fb6edecc1a4c
Static task
static1
Behavioral task
behavioral1
Sample
859e6cf84ff73e9a9921fb829c3a386e.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
859e6cf84ff73e9a9921fb829c3a386e.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
859e6cf84ff73e9a9921fb829c3a386e
-
Size
777KB
-
MD5
859e6cf84ff73e9a9921fb829c3a386e
-
SHA1
5bbc936fdb82ed3e57c1ae2f4a0cbfab459883b7
-
SHA256
cad1b58e38cfc1e0a0431fa9aae253a1626b4e4e3a6cbc6a8f119cd4959f6410
-
SHA512
bae39f648487e4ac364152cf18061d28d834f11ea27027075ebc41508d0850fd5416b0fcfdfedbc66afc4c734bb969625046cb8f18523e437f49fb6edecc1a4c
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-